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(57) Abstract: The invention relates to a method for providing information related to a client (C) to a first web server (WS 1). The 
invention further relates to a proxy server, a program unit loadable into a proxy server, a web server, and a program unit loadable into 
a web sever, all of them to perform the invented method. A second web server (WS2) stores the information related to the client (C), 
and the first web server (WS 1) is connected to the client (C) via a proxy server (PS). The proxy server stores a cookie for the first 
web server (WS 1), the cookie being related to the client (C) and the cookie comprising a network address of the second web server 
(WS2). The client (C) sends a message towards the first web server (WS 1) via the proxy server (PS). The message is received in the 
proxy server (PS), that inserts the cookie into the message, and forwards the message to the first web server (WS 1). The first web 
server (WS 1) receives the message, retrieves the network address of the second web server (WS2) from the cookie, and requests the 
second web server (WS2) for the information related to the client (C). The second web server (WS2) sends information related to 
the client (C) to the first web server (WS 1). 
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Method for providing information to a web server 
Field of invention 

The invention relates to method for providing to a web server information that is related to 
5 a client. The invention further relates to a proxy server, a program unit loadable into a 
proxy server, a web server, and a program unit loadable into a web sever, all of them to 
perform the invented method. 

Description of prior art 

In the Internet a first web server can be connected to a client for providing a service to the 
10 client. The first web server may demand information related to the client that is held by a 
second web server. An example for the information related to the client is the 
acknowledgement of a mobile payment, that has to be performed before a service can be 
offered to the client by the web server. In this example the second web server can be a 
payment server e.g. a secure electronic transaction wallet server. 

15 Further examples are an electronic mail held by an electronic mail server, an authentication 
to be performed by an authentication server, or an electronic ticket that is provided by a 
ticketing server. To access the information related to the client, the IP address of the second 
web server has to be provided to the first web server. 

A solution to that problem was proposed in "Card Payment Transactions in an m- 
20 Commerce Environment - Feasibility Study" by Konrad Wrona and Terence Trench, 

Wireless Application Part Forum Meeting, Munich, 10 th to 15 th December 2000. According 
to this solution, a mapping is provided between a network address of the client and the web 
address of the second web server in a third web server. This solution poses the problem of 
maintaining the third web server providing the mapping between the network address of the 
25 client and the web address of the second web server. This is especially difficult if the 
number of mappings between network addresses of clients and web addresses of web 
servers is high, and said functionality of mapping between the two address types has to be 
distributed within the network. 



WO 2004/002105 PCT/EP2003/005016 



2 

Therefore it is subject of the invention to present a simple method to provide information 
that is related to a client to a web server. 

Summary of the invention 

This object is achieved by the methods of claims 1 , 2 and 5, the proxy server of claim 1 1 , 
5 the program unit loadable into a proxy server according to claim 12, the web server 

according to claim 13, and the program unit loadable into a web server according to claim 
14. Advantageous embodiments are described in dependent claims. 

It is an advantage of the proposed method that the network address of the second sever is 
stored in a proxy server and only one proxy server is related to the client. This is 
10 advantageous as the network address of the second server can be maintained easily in the 
proxy server. Further advantageous is, that the network address of the second server is sent 
during a session between the client and the web server thus avoiding the need of contacting 
a third web server. 

Advantageous is a method wherein the cookie is sent to the proxy server in a session 
15 according to a hypertext transfer protocol by the second web server. This is a simple 

method to provide the network address of the second web server to the proxy server as the 
second web server is holding its network address. 

In another advantageous embodiment the request to the second web server is sent via the 
client. This is advantageous as the existing session between the client and the web server 
20 can be used for sending the request. 

A simple method for requesting and providing information related to a client to a web 
server is especially required if the information authenticates or authorizes the client towards 
the web server. 

Brief description of the drawings 

25 Fig. 1 shows an architecture and a signal flow using the invented method and 
Fig. 2 shows an alternative signal flow using the invented method. 
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Detailed description of embodiments 

In the following the invention is described in more detail by means of embodiments and 
figures. Equal reference signs indicate equal elements. 

Figure 1 depicts an example of an architecture and a signal flow for using the invented 
5 method. It shows a client C connected to a first web server WS 1 via a proxy server PS. 
Figure 1 further shows a second web server WS2. A message 1 that is sent from the client 
C to the first web server WS 1 , a request 2 from the first web server WS 1 to the second web 
server WS2 and a response 3 from the second web server WS2 to the first web server WS 1 
are depicted as arrows. The contents of the message 1, the request 2 and the response 3 is 
10 described together with the description of the signal flow depicted in figure 2. 

Figure 2 depicts an alternative signal flow according to the invention. It shows a client C2 
connected to a first web server WS12 and to a second web server WS22 via a proxy server 
PS2. The alternative signal flow contains a message 12 that is sent from the client C2 to the 
first web server WS12 via the proxy server PS2, a request 22 that is sent from the first web 
15 server WS 12 to the second web server WS22^yia the client C2 and a response 32 from the 
second web server WS22 to the first web server WS12 via the client C2. The message 12, 
the request 22 and the response 32 are depicted as arrows. 

The client C, C2 can be a mobile terminal and the proxy server PS, PS2 can be a wireless 
application protocol gateway or a hypertext transfer protocol proxy server. The user of the 

20 client C, C2 is requesting a first service from a first service provider that is offering the 

service via a first web server WS1, WS12. The service can be a service for offering digital 
content, a service for supplying the user of the client C, C2 with a physical good or any 
other service. If the service is a service for offering digital content, the first web server 
WS1 , WS12 can be for example a multimedia server storing multimedia streams. The user 

25 of the client C, C2 is subscribed at a second service provider that is offering a further 
service via a second web server WS2, WS22 to the user of the client C, C2. Said further 
service can be for example be a service for authentication or authorization or a service for 
electronic payments. The second web server WS2, WS22 can be for example an electronic 
mail server, an authentication server, a ticketing server, or a payment server such as a 
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secure electronic transaction wallet server. The second web sever WS2 can e.g. provide 
rights related to a service provided by the first server WS 1 , WS 1 2 to the user of the client 
C, C2. To this end the second web server WS2, WS22 can store authentication data, 
electronic tickets, or data related to electronic payments for the user of the client C, C2. 

5 The client C, C2 establishes a connection to the second web server WS2, WS22 via the 
proxy server PS, PS2. If the client C, C2 is a mobile terminal and the proxy server PS, PS2 
is a wireless application protocol gateway the connection between the client C, C2 and the 
second web server WS2, WS22 can comprise a first connection between the client C, C2 
and the proxy server PS, PS2 over a wireless application protocol and a second connection 

10 between the proxy server PS, PS2 and the second web sever WS2, WS22 over a hypertext 
transfer protocol. Alternatively the proxy server PS, PS2 can be a hypertext transfer 
protocol proxy server and the connection between the client C, C2 and the second web 
server WS2, WS22 can comprise a first connection between the client C, C2 and the proxy 
server PS, PS2 over the hypertext transfer protocol and a second connection between the 

15 proxy server PS, PS2 and the second web sever WS2, WS22 via the hypertext transfer 

protocol. To provide connections according to the wireless application protocol to clients of 
a first kind and connections according to the hypertext transfer protocol to clients of a 
second kind the proxy server PS, PS2 can provide both the functionality of a wireless 
application protocol gateway and the functionality of a hypertext transfer protocol proxy 

20 server. 

The second web server WS2, WS22 sends a message containing a cookie to the proxy 
server PS, PS2 in a session according to the hypertext transfer protocol, the cookie being 
related to the client C, C2 and the cookie comprising a network address of the second web 
sever WS2, WS22. The proxy server PS, PS2 stores the cookie for the first web server 
25 WS1.WS12. 

The client C, C2 establishes a connection to the first web server WS 1 , WS 12 via the proxy 
server PS, PS2, for example for receiving digital content from the first web server WS1, 
WS12. 
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The first web server WS1, WS12 demands information related to the client C, C2, the 
information being stored by the second web server WS2, WS22. The information can be for 
example a ticket allowing access to digital content provided by the first web server WS1, 
WS12 or information authenticating the user of the client C, C2 towards the first web server 
5 WS 1 , WS 12. The information can authorize the user of the client C, C2 towards the first 
web server WS 1, WS 12 or the information can be related to a payment for a service, a 
physical good or digital content that is provided by the first web server WS 1 , WS 12. 

The client C, C2 sends a message 1, 12 towards the first web server WS1, WS12 via the 
proxy server PS, PS2. The proxy server PS, PS2 receives the message 1,12, inserts the 

10 cookie into the message 1,12 and forwards the message 1,12 towards the first web server 
WS1, WS12 for providing the network address of the second server WS2, WS22 to the first 
web server WS 1 , WS 1 2. The first web server WS 1 , WS 1 2 receives the message 1,12 
containing the cookie, retrieves the network address of the second web server WS2, WS22 
from the cookie and requests 2, 22 the second web server WS2, WS22 for the information 

15 related to the client C, C2. In the alternative signal flow according to figure 2 the request 22 
to the second web server WS22 is sent towards the client C2 and redirected or forwarded by 
the client C2 to the second web server WS22. 

The second web server WS2, WS22 sends the information related to the client C, C2 to the 
first web server WS1, WS12 in a response 3, 32. In the alternative signal flow according to 

20 figure 2 the response 32 is sent via the client C2. The first web server WS1 , WS 12 receives 
the information related to the client C, C2. The received information can authenticate or 
authorize the client C, C2 towards the first web server WS1, WS12. According to the 
information received from the second web server WS2, WS22 the first web server WS 1, 
WS12 can decide to provide a service to the user of the client C, C2. The first web server 

25 can e.g. decide to provide access to a digital content, or supply a physical good to the user 
of the client C, C2 depending on the information received from the second web server 
WS2, WS22. 

In a preferred embodiment of the invention a proxy server PS, PS2 for a communication 
network using the invented method comprises a memory for storing a cookie, interfaces for 
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sending and receiving messages, and a processing system that that is adapted to receive in a 
session according to the hypertext transfer protocol a cookie comprising the network 
address of the second web server WS2, WS22. The processing system is adapted to store a 
cookie for the first web server WS 1 , WS 1 2, wherein the cookie is related to the client C, C2 
5 and comprises a network address of the second web server WS2, WS22. The processing 
system is adapted to receive a message 1,12 that is addressed to the first web server WS1, 
WS12, to insert the cookie into the message 1,12, and to forward the message 1, 12 to the 
first web server WS 1, WS12. 

A program unit for use of the proposed method is loadable into a proxy server PS, PS2 in a 
10 communication network. The program unit can for example be stored on a data carrier, e.g. 
a magnetic or optical recording medium. It can also be embodied as a sequence of signals 
loadable into a proxy server PS, PS2, e.g. over a data link. The program unit comprises 
code adapted to store a cookie for a first web server WS 1 , WS 12, wherein the cookie is 
related to the client C, C2 and the cookie comprises a network address of a second web 
15 server WS2, WS22. The program unit is adapted to process messages, said messages 

comprising a message 1, 12 for the first web server WS1, WS12 from the client C, C2. The 
program unit further comprises code adapted to insert the cookie into the message 1,12 and 
to forward the message 1, 12 towards the first web server WS1, WS12. 

In a preferred embodiment of the invention a web server WS 1 , WS 12 for a communication 
20 network using the invented method comprises interfaces for sending and receiving 
messages. The web server WS1, WS12 further comprises a processing system that is 
adapted to retrieve an address of a second web server WS2, WS22 from a cookie and to 
send a request for information related to a client C, C2 towards the second web server WS2, 
WS22. 

25 A further program unit for use of the proposed method is loadable into a web server WS 1 , 
WS12 for a communication network. Said further program unit can for example be stored 
on a data carrier, e.g. a magnetic or optical recording medium. It can also be embodied as a 
sequence of signals loadable into a web server, e.g. over a data link. The further program 
unit comprises code adapted to process messages, said messages comprising a message 1, 
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12 from a proxy server PS, PS2 and a request 2, 22 towards a second web server WS2, 
WS22. The message 1,12 from the proxy server PS, PS2 comprises a cookie with a 
network address of the second web server WS2, WS22. The request 2, 22 towards the 
second web server WS2, WS22 demands information related to the client C, C2. The 
5 further program unit comprises code adapted to retrieve the network address of the second 
web server WS2, WS22 from the cookie, and to send the request 2, 22 for information 
related to the client C, C2 towards the second web server WS2, WS22. 
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Claims 

1 . Method for providing information related to a client (C; C2) to a first web server (WS 1 ; 
5 WS12), wherein a second web server (WS2; WS22) stores the information related to the 

client (C; C2), and the first web server (WS1; WS12) is connected to the client (C; C2) 
via a proxy server (PS; PS2), the method comprising the steps of: 

- storing a cookie for the first web server (WS1 ; WS12) in the proxy server (PS; PS2), 
the cookie being related to the client (C; C2) and the cookie comprising a network 

10 address of the second web server (WS2; WS22), 

- sending a message ( 1 ; 12) towards the first web server (WS 1 ; WS 1 2) via the proxy 
server (PS; PS2), 

- receiving the message (1; 12) in the proxy server (PS; PS2), 

- inserting the cookie into the message (1; 12), 

15 - forwarding the message ( 1 ; 12) to the first web server (WS 1 ; WS 1 2), 

- receiving the message (1; 12) in the first web server (WS1; WS12), 

- retrieving the network address of the second web server (WS2; WS22) from the 
cookie, 

- requesting (2; 22) from the second web server (WS2; WS22) the information related 
20 to the client (C; C2), 

- receiving in the second web server (WS2; WS22) the request (2; 22) for information 
related to the client (C; C2), and 

- sending (3; 32) information related to the client (C; C2) to the first web server (WS1; 
WS12). 

25 2. Method for providing information related to a client (C; C2) to a first web server (WS1 ; 
WS12), the information being stored by a second web server (WS2; WS22), wherein 
the first web server (WS1 ; WS12) is connected to the client (C; C2) via a proxy server 
(PS; PS2), and wherein the following steps are performed by the proxy server (PS; 
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PS2): 

- storing a cookie for the first web server (WS1 ; WS12), wherein the cookie is related to 
the client (C; C2) and comprises a network address of the second web server (WS2; 
WS22), 

5 - receiving a message (1; 12) that is addressed to the first web server (WS1 ; WS12), 

- inserting the cookie into the message (I; 12), and 

- forwarding the message (1 ; 12) to the first web server (WS I; WS12). 

3. Method according to claim 2, wherein the client (C; C2) is a mobile terminal, the proxy 
server (PS; PS2) is at least one of a wireless application protocol gateway or a hypertext 
10 transfer protocol proxy server, and wherein the connection of the client (C; C2) to the 

first web server (WS1; WS12) comprises a first connection between the client (C; C2) 
and the proxy server (PS; PS2) according to a wireless application protocol or a 
hypertext transfer protocol and a second connection between the proxy server (PS; PS2) 
and the first web server (WS1; WS12) according to a hypertext transfer protocol. 

15 4. Method according to claim 2 or 3, wherein the cookie is sent to the proxy server (PS; 

PS2) in a session according to a hypertext transfer protocol by the second web server 
(WS2; WS22). 

5. Method for requesting by a first a web server (WS 1 ; WS 1 2) information related to a 
client (C; C2) from a second web server (WS2; WS22) holding the information related 
20 to the client (C; C2), the method comprising the following steps: 

- receiving a message (1 ; 12) with a cookie comprising a network address of the second 
web server (WS2; WS22) from a proxy server (PS; PS2), 

- retrieving the network address of the second web server (WS2; WS22) from the 
cookie, 

25 - requesting (2; 22) from the second web server (WS2; WS22) the information related 

to the client (C; C2). 
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6. Method according to claim 5, wherein the request (22) to the second web server 
(WS22) is sent via the client (C2). 

7. Method according to claim 5 or 6, wherein the first web server (WS 1 ; WS 12) receives 
the information related to the client (C; C2). 

5 8. Method according to claim 7, wherein the information related to the client (C; C2) 
authenticates the client (C; C2) towards the web server. 

9. Method according to claims 7 or 8, wherein the information related to the client (C; C2) 
authorizes the client (C; C2) towards the web server. 

10. Method according to any of the claims 5 to 9, wherein the second web server (WS2; 
10 WS22) is at least one of a payment server, an electronic mail server, an authentication 

server, or a ticketing server. 

11. Proxy server (PS; PS2) for a communication network, wherein the proxy server (PS; 
PS2) comprises a memory for storing a cookie, interfaces for sending and receiving 
messages, characterized by a processing system that that is adapted to perform the 

15 method according to any of the claims 2 to 4. 

12. Program unit loadable into a proxy server (PS; PS2) in a communication network, 
wherein the program unit comprises code adapted to store a cookie for a first web 
server (WS1; WS12), wherein the cookie is related to the client (C; C2) and comprises a 
network address of a second web server (WS2; WS22), wherein the program unit is 

20 adapted to process messages, said messages comprising a message (1; 12) for the first 

web server (WS 1 ; WS 12) from the client (C; C2) and wherein the program unit 
comprises code adapted to insert the cookie into the message (1 ; 12) and to forward the 
message ( 1 ; 12) towards the first web server (WS 1 ; WS 12). 
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13. Web server in a communication network, comprising interfaces for sending and 

receiving messages and a processing system that is adapted to retrieve an address of a 
second web server (WS2; WS22) from a cookie and to send a request for information 
related to a client (C; C2) towards the second web server (WS2; WS22). 

5 14. Program unit loadable into a web server in a communication network, wherein the 

program unit comprises code adapted to process messages, said messages comprising a 
message (1 ; 12) from a proxy server (PS; PS2) and a request (2; 22) towards a second 
web server (WS2; WS22), wherein the message (1; 12) from the proxy server (PS; PS2) 
comprises a cookie with a network address of the second web server (WS2; WS22), the 

10 request (2; 22) towards the second web server (WS2; WS22) demands information 

related to the client (C; C2), and wherein the program unit comprises code adapted to 
retrieve the network address of the second web server (WS2; WS22) from the cookie, 
and to send the request (2; 22) for information related to the client (C; C2) towards the 
second web server (WS2; WS22). 



15 



WO 2004/002105 PCT7EP2003/005016 

1/2 




Fig. 1 



WO 2004/002105 



2/2 



PCT7EP2003/005016 




INTE 



IONAL SEARCH REPORT 



tnt< 



ppllcatlon No 

PCT/EP 03/05016 



A. CLASSIFICATION OF SUBJECT MATTER 

IPC 7 H04L29/06 G07F19/00 



According to International Patent Classification (IPC) or to both national classification and IPC 



B. FIELDS SEARCHED 



Minimum documentation searched (classification system followed by classification symbols) 

IPC 7 H04L G07F 



Documentation searched other than minimum documentation to the extent that such documents are included in the fields searched 



Electronic data base consulted during the international search (name of data base and, where practical, search terms used) 

EPO-Internal , INSPEC, COMPENDEX, IBM-TDB 



C. DOCUMENTS CONSIDERED TO BE RELEVANT 



Category ■ 



Citation ot document, with indication, where appropriate, of the relevant passages 



Relevant to claim No. 



MET: "MeT Authorization for account based 
payment using a SET Wallet Server" 
MET (MOBILE ELECTRONIC TRANSACTIONS) 
STANDARD, 'Online! 

21 February 2001 (2001-02-21), pages 1-15, 
XP002221755 

Retrieved from the Internet: 
<URL: http://www.mobi letransact1on.org/pdf/ 
MeT-SET-Wal 1 et-20010221 . pdf > 
'retrieved on 2002-11-20! 
* sections 1., 4., 6.4, 7. * 
figure 3 

US 6 157 917 A (BARBER TIMOTHY P) 
5 December 2000 (2000-12-05) 
abstract 

column 6, line 50 -column 7, line 3 

-/-- 



5-10,13, 
14 



1,2,11, 
12 

2,3,5-14 
1 



m 



Further documents are listed in the continuation of box C. 



Patent family members are listed In annex. 



° Special categories of cited documents : 

•A" document defining the general state of the art which is not 
considered to be of particular relevance 

*E* earlier document but published on or after the international 
filing date 

•L* document which may throw doubts on priority claim (s) or 
which is cited to establish the publication date of another 
citation or other special reason (as specified) 

"O" document referring to an oral disclosure, use, exhibition or 
other means 

'P a document published prior to the international filing date but 
later than the priority date claimed 



°T* later document published after the international filing date 
or priority date and not In conflict with the application but 
cited to understand the principle or theory underlying the 
invention 

"X* document of particular relevance; the claimed Invention 
cannot be considered novel or cannot be considered to 
involve an Inventive step when the document Is taken alone 

"Y* document of particular relevance; the claimed invention 

cannot be considered to involve an inventive step when the 
document is combined with one or more other such docu- 
ments, such combination being obvious to a person skilled 
In the art. 

document member of the same patent family 



Date of the actual completion of the international search 



4 August 2003 



Date of mailing of the international search report 



11/08/2003 



Name and mailing address of the ISA 

European Patent Office. P.B. 5818 Patentlaan 2 
NL - 2280 HV Rijswijk 
TeL (+31-70) 340-2040, Tx. 31 651 epo nl, 
Fax: (+3 1 -70) 340-3016 



Authorized officer 



Kestlng, V 



Form PCT71SA/210 (second sheet) (July 1992) 



INTE 



IONAL SEARCH REPORT 



IntelVDnVpplication No 

PCT/EP 03/05016 



C(Contlnuation) DOCUMENTS CONSIDERED TO BE RELEVANT 



Category * Citation of document, with indlcatlon.where appropriate, of the relevant passages 



Relevant to claim No. 



"SET Secure Electronic Transaction 
Specification, Book 1: Business 
Description" 
SET SPECIFICATIONS, 

31 May 1997 (1997-05-31), XP002100669 
page 59 

US 5 875 296 A (AULT MICHAEL BRADFORD ET 
AL) 23 February 1999 (1999-02-23) 
abstract 

W0 01 93092 A (NOKIA NETWORKS OY ; LAHTI 
JERRY (FI); KERAENEN TUOMAS (FI)) 
6 December 2001 (2001-12-06) 
page 2, line 3 - line 20 

W0 02 17253 A (SCHUBA MARK0 ;WR0NA K0NRAD 
(DE); ZAVAGLI 6UID0 (JP); ERICSSON TELE) 
28 February 2002 (2002-02-28) 
page 19, line 29 -page 20, line 22 



5,13,14 



5,13,14 



1-3,11, 
12 



Form PCT71SA/210 (continuation ol second sheet) (July 1992) 



INTE 

Inf. 



kTIONAL SEARCH REPORT 

ion on patent family members 



In^^pio^Bppllcatlon No 

PCT/EP 03/05016 



Patent document 




Publication 




Patent family 


Publication 


cited in search report 




date 




member(s) 


date 


US 6157917 


A 


05-12-2000 


NONE 








A 
M 




jr 


OAAOftft"7 DO 


Ol Al OAAA 

ol-01-ZOOO 








ip 

Jr 


IUZo/Uho A 


25-09-1998 


WO 0193092 


A 


06-12-2001 


AU 


6397301 A 


11-12-2001 








LIN 


1 A O 0 1 £ 1 T 


23-07-2003 








TP 


i one o 01 a 1 
lZ9bZZl Al 


26-03-2003 








wu 


a i no Aft o a i 
U193U9Z Al 


06-12-2001 


W0 0217253 


A 


28-02-2002 


EP 


1182625 Al 


27-02-2002 








AU 


7851401 A 


04-03-2002 








WO 


0217253 Al 


28-02-2002 








US 


2002052842 Al 


02-05-2002 



Form PCT7ISA/210 (patent family annex) (July 1992) 



